New Search

.NET 2.0 Application Folder Information Disclosure Vulnerability

oval:org.mitre.oval:def:419

Microsoft .NET framework 2.0 (ASP.NET) in Microsoft Windows 2000 SP4 XP SP1 and SP2 and Server 2003 up to SP1 allows remote attackers to bypass access restrictions via unspecified "URL paths" that can access Application Folder objects "explicitly by name."

Family:
windows
Status:
ACCEPTED
Platform(s):
  • Microsoft Windows Server 2003
  • Microsoft Windows 2000
  • Microsoft Windows XP
Class:
vulnerability
Reference(s):
  • CVE-2006-1300
Product(s):
  • Microsoft .NET Framework